David,
> The first draft of the Enhanced SMF Profiles design is now available at
> http://opensolaris.org/os/project/smf-profiles/Design . If you are so
> inclined, please review it and send feedback to this list.
Smiles all around -- thanks.
Secure by default use case -- great.
Open Questions: profile list in a name service
= is there a way to get this early enough in boot or
to restrict what it can do after name services come up?
Security: solaris.smf.modify seems too powerful to give out.
Perhaps a specific (action_authorization) authorization at the
service_bundle level that allows import/activation of a profile.
Perhaps also value_authorization to be able to dynamically change
what is there.
Gary..
